The 4.6 kernel has been released

Well, not to say they're perfect - all of us are only human - but isn't the world behaving with them in ways they can rightfully find infuriating, in the first place ? ;)
Every day, the hard work of (mainly) Brad "spender" Spengler, PaXTeam ("pipacs" on IRC) and Emese "ephox" Revfy is being decried, minimized, misattributed by hordes of incompetents who think they have a clue. Said hard work is a very long stream of ground-breaking, effective defenses, invented over more than 15 years - as a part-time job !

Meanwhile, security of mainline Linux barely progresses over time:
* powerful defenses, not just UDEREF and KERNEXEC, are outright rejected for bad reasons;
* only a small subset of the known good defenses is added, very slowly and not even always the right way: I recently read about the mainline memory sanitization as both more complicated and less powerful than that of grsec; also, the way __ro_after_init is being added to the kernel is a thoroughly sick joke, as outlined by alonz and minipli below, and public communication about it is outright misleading and wrong;
* bad defenses are being added and take resources away from the more efficient stuff: PaX/grsec do not implement KASLR because it has low protective value by itself and multiple known defeats (spender posted about a defeat with <300-byte source code which can run in a seccomp mode 1 sandbox, not to mention the many infoleaks in mainline not plugged by e.g. stack sanitization;
* brand-new security pigs, as proven after the fact by their track record, enter the mainline kernel on a frequent basis: BPF JIT, unprivileged user namespaces (a treasure for privilege escalation), etc. Needless to say, grsec either hardens, or outright disables, the pigs.

The size of the grsecurity patch more than quadrupled over the past five years and doubled over the past two years: grsecurity-2.2.2-3.0.3-201108232250.patch is 2291624 bytes, grsecurity-3.0-3.14.10-201407012152.patch is 4106385 bytes, grsecurity-3.1-4.5.4-201605131918.patch is 9091528 bytes. Years ago, before CONSTIFY was rewritten, I spent a bit of time pushing to mainline several tiny bits of the low-hanging fruit, but I have other (user-space) things to focus on, and mainline feels like a bottomless pit.

Please. I've known some very pleasant thirteen-year-olds.

> SMAP has an article on this very website from 2012 (https://lwn.net/Articles/517475/). It's hardly "new processors only".
Well, the fact that this very website has an article from 2012 about SMAP does not mean that Intel processors with the SMAP feature have been available for purchase in the real world, ever since 2012 :)
Haswell processors from 2013 and 2014 do not have SMAP. I know from other sources, and anyway, I have access to two models of computers equipped with Haswell processors: i7-4700HQ from 2013 and i5-4590 from 2014, neither of which has SMAP. Only the relatively short-lived Broadwell (2014, for most purposes 2015), and the longer-lived Skylake (2015 to present) processor - i.e. the two latest generations of higher-powered processors from Intel - have it. Two years later than the article you're pointing.
Contrast that with a protection which works on a wide range of Intel, AMD and compatible x86/x86_64 processors, because it does not _need_ special hardware support (though it can leverage e.g. PCID and INVPCID for greater speed and/or protection for UDEREF), and has been available for a decade (!) before SMAP hit the market. Likewise, ARM PAN is newer, and has narrower hardware support, than UDEREF on ARM.
In the sea of x86/x86_64 devices used in the real world today, Broadwell and Skylake are a small minority. Hence my "a small subset of very recent processors" claim, which I stand behind, based on the above facts.

> UDEREF: from the man himself: https://lwn.net/Articles/342751/ (also read: https://grsecurity.net/~spender/uderef.txt - it's hardly a panacea and more a software stop-gap that can be bypassed)
You can find more contemporary quotes from the man himself, indicating that SMAP is functionally still a strict subset of UDEREF, and that it could be turned into something more useful.
I know UDEREF is not perfect, I didn't state it is - it "just" protects way more computers than SMAP does :)

The CONSTIFY mainline submission by Emese Revfy was a 100+-patch series.

I don't think either of us is going to convince the other one where the main part of the uncooperativeness and attitude problem lies, so how about we stop discussing on that angle ?

Can you explain your linking of https://lwn.net/Articles/342751/ ? What do you think I'm saying there? It's a very odd comment to pick out unless you mistakenly believe I'm talking about UDEREF in anything but the first sentence. That is, I get the impression you think I'm talking about UDEREF weaknesses and came here to smugly post it as proof, when in fact I'm talking about mmap_min_addr. UDEREF doesn't have any of those problems listed.

-Brad

Yes, I do. I mean, why even bother to introduce a security mechanism that then gets used on only a single object while it could be so easily attached to so more many places, and, thereby, bringing a *real* security gain. But, apparently, nobody cares enough to do so. Or why's there not a single new user in linux-next?